The Challenge- Engineer and deploy Zero-Trust access controls across workforce and service identities. Within the team, implement controls using RBAC and ABAC standards. Including device and posture checks and risk-adaptive policies for critical services and high-risk scenarios.
- Harden privileged access and migrate administrators to right-size entitlements and eliminate long-lived elevated access across prioritized services.
- Implement SaaS security posture controls by participating reviews and deployments; defining baselines for M365/Slack/GitHub/Workday/Google; building remediation runbooks and posture success measurements.
- Instrument identity metrics collection and tracking as prioritized by the leadership team. Including capturing authentication (AuthN)/authorization (AuthZ) and entitlement changes; publishing dashboards for privilege drift, misconfigurations, and access sprawl; coordinating risky events to security alert procedures.
- Participation in architecture & standards implementation guides and reference architecture. Including how adherence reduces risk reduction over time.
What is needed to succeed- Awareness of enterprise security controls and concepts, including how they are developed and applied.
- Familiarity reviewing enterprise identity controls and solutions, including delivering outcomes built on Entra ID/AD, Okta, and SailPoint (or equivalents).
- Knowledge of core information technology concepts associated with the network, user and data protection, and common cloud platforms.
- Influence & collaboration with key partners in IT, security teams and the business to develop security outcomes that reduce risk and require creative problem solving.
- Strong written and verbal communication skills, including communicating problems and solutions to peers and technical specialists.
- Ability to deliver measurable outcomes in a technical environment that aligns with long term goals.
- Active team participation and an inquisitive mind passionate about delivering creative solutions and working collaboratively!
Preferred- Engineering awareness of secure access control solutions (e.g. Teleport, Vault), secrets management, and CI/CD solutions and their customers.
- Scripting/automation knowledge (e.g., Python, PowerShell) and curiosity about infrastructure-as-code (e.g., Terraform) for policy and pipeline automation.
- Experience/Education requirements ~2+ years relevant experience; Bachelor's required or equivalent experience.
- Experience in enterprise environments as a member of a technical team.
Expected Pay Range:Our compensation reflects the cost of labor across several U.S. geographic markets, and we pay differently based on those defined markets. The U.S. pay range for this position is $122,900 -- $216,300 annually. Pay within this range varies by work location and may also depend on job-related knowledge, skills, and experience. Your recruiter can share more about the specific salary range for the job location during the hiring process.
In California, the pay range for this position is $149,400 - $216,300In Washington, the pay range for this position is $143,400 - $207,600
At Adobe, for sales roles starting salaries are expressed as total target compensation (TTC = base + commission), and short-term incentives are in the form of sales commission plans. Non-sales roles starting salaries are expressed as base salary and short-term incentives are in the form of the Annual Incentive Plan (AIP).
In addition, certain roles may be eligible for long-term incentives in the form of a new hire equity award.
